git: Extract write_temporary_ssh_key() function

Turbo87 · Turbo87 · commit 85423ecbb2ca · 2021-12-26T10:56:47.000+01:00
diff --git a/src/git.rs b/src/git.rs
@@ -1,4 +1,5 @@
 use std::collections::HashMap;
+use std::io::Write;
 use std::path::{Path, PathBuf};
 
 use swirl::PerformError;
@@ -48,6 +49,25 @@ impl Credentials {
             }
         }
     }
+
+    pub fn write_temporary_ssh_key(&self) -> Result<tempfile::TempPath, PerformError> {
+        let key = match self {
+            Credentials::Ssh { key } => key,
+            _ => return Err("SSH key not available".into()),
+        };
+
+        // When running on production, ensure the file is created in tmpfs and not persisted to disk
+        #[cfg(target_os = "linux")]
+        let mut temp_key_file = tempfile::Builder::new().tempfile_in("/dev/shm")?;
+
+        // For other platforms, default to std::env::tempdir()
+        #[cfg(not(target_os = "linux"))]
+        let mut temp_key_file = tempfile::Builder::new().tempfile()?;
+
+        temp_key_file.write_all(key.as_bytes())?;
+
+        Ok(temp_key_file.into_temp_path())
+    }
 }
 
 #[derive(Serialize, Deserialize, Debug)]
diff --git a/src/worker/git.rs b/src/worker/git.rs
@@ -1,11 +1,10 @@
 use crate::background_jobs::Environment;
-use crate::git::{Crate, Credentials};
+use crate::git::Crate;
 use crate::schema;
 use anyhow::Context;
 use chrono::Utc;
 use diesel::prelude::*;
 use std::fs::{self, OpenOptions};
-use std::io::prelude::*;
 use swirl::PerformError;
 
 #[swirl::background_job]
@@ -99,23 +98,7 @@ pub fn squash_index(env: &Environment) -> Result<(), PerformError> {
 
     // Shell out to git because libgit2 does not currently support push leases
 
-    let key = match &repo.credentials {
-        Credentials::Ssh { key } => key,
-        Credentials::Http { .. } => {
-            return Err(String::from("squash_index: Password auth not supported").into())
-        }
-        _ => return Err(String::from("squash_index: Could not determine credentials").into()),
-    };
-
-    // When running on production, ensure the file is created in tmpfs and not persisted to disk
-    #[cfg(target_os = "linux")]
-    let mut temp_key_file = tempfile::Builder::new().tempfile_in("/dev/shm")?;
-
-    // For other platforms, default to std::env::tempdir()
-    #[cfg(not(target_os = "linux"))]
-    let mut temp_key_file = tempfile::Builder::new().tempfile()?;
-
-    temp_key_file.write_all(key.as_bytes())?;
+    let temp_key_path = repo.credentials.write_temporary_ssh_key()?;
 
     let checkout_path = repo.checkout_path.path();
     let output = std::process::Command::new("git")
@@ -124,7 +107,7 @@ pub fn squash_index(env: &Environment) -> Result<(), PerformError> {
             "GIT_SSH_COMMAND",
             format!(
                 "ssh -o StrictHostKeyChecking=accept-new -i {}",
-                temp_key_file.path().display()
+                temp_key_path.display()
             ),
         )
         .args(&[
